CVE-2008-4552 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-4552
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-4552

Description: nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hosts_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/45895 UBUNTU http://www.ubuntu.com/usn/USN-687-1 SAID Secunia Advisory: SA32346 Secunia Advisory: SA32481 Secunia Advisory: SA33006 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2009:060 CONFIRM http://wiki.rpath.com/Advisories:rPSA-2008-0307 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/497935/100/0/threaded BID 31823

Return to the previous page.